February 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Energetic Bear APT Group – Active IOCs
March 11, 2022Rewterz Threat Alert – FormBook Malware – Active IOCs
March 11, 2022Rewterz Threat Alert – Energetic Bear APT Group – Active IOCs
March 11, 2022Rewterz Threat Alert – FormBook Malware – Active IOCs
March 11, 2022
Severity
Medium
Analysis Summary
CVE-2022-24323
Schneider Electric EcoStruxure Process Expert are vulnerable to a denial of service, caused by improper check for unusual or exceptional conditions. By sending a specially-crafted request to intercept and manipulate specific Modbus response data, a remote attacker could exploit this vulnerability to cause a disruption of communication between the Modicon controller and the engineering software, and results in a denial of service condition.
CVE-2022-24322
Schneider Electric EcoStruxure Control Expert and Process Expert are vulnerable to a denial of service, caused by a buffer overflow. By sending a specially-crafted request to intercept and manipulate specific Modbus response data, a remote attacker could exploit this vulnerability to cause a disruption of communication between the Modicon controller and the engineering software, and results in a denial of service condition.
Impact
- Denial of Service
- Buffer Overflow
Indicators Of Compromise
CVE
- CVE-2022-24323
- CVE-2022-24322
Affected Vendors
Schneider Electric
Affected Products
- Schneider Electric EcoStruxure Process Expert 2021
- Schneider Electric EcoStruxure Control Expert 15.0
- SP1 Schneider Electric EcoStruxure Process Expert 2021
- Schneider Electric EcoStruxure Control Expert 15.0 SP1
Remediation
Refer to Schneider Electric Advisory for patch, upgrade or suggested workaround information.